Hi All,
We have been doing more and more work with ZTNA tagging but have stumbled across an issue.
EMS 7.0.3
Forti OS 7.0.5
When using active directory group tags we are finding they do not apply. For an example, we would like to tag any users that are members of an ad Group called "Workstation Admins"
In EMS we are able to find the AD group fine and create the tag rule
When we login to a workstation with fortclient installed as a user that is a member of the above group the tag does not show / get detected
If we use a generic AD group like domain users, the tag pops straight away
Any ideas would be appreciated
Created on 04-14-2022 12:28 PM Edited on 04-14-2022 12:29 PM
Thanks, look forward to an update.
Hi
Did you tried to reboot endpoint ?
Also I believe user group need to be type security group
Please note there is a bug reported for this feature so please check with TAC it might require more troubleshooting
thanks
Pavol Eisenberg
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.